65b981d99e
fix: slapd segfaults when PEM certificate is used and key is not set
...
Resolves : #772890
2012-01-31 18:11:36 +01:00
f47de25361
fix: replication (syncrepl) with TLS causes segfault
...
Resolves : #783431
2012-01-31 18:10:55 +01:00
328c8e208b
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
2012-01-13 05:40:42 -06:00
c60a3191a5
fix: reload systemd daemon after installation
2011-11-30 18:58:19 +01:00
617e584701
update config files
2011-11-30 18:40:25 +01:00
8bd37126ac
configuration initialization from LDIF file
2011-11-30 18:40:25 +01:00
1cd7d29c02
compile backends as modules (except BDB, HDB, and monitor)
2011-11-30 16:51:14 +01:00
ad3da8cc04
new upstream release (2.4.28)
...
- upstream changes:
- server: support for delta-syncrepl in multi master replication
- server: add experimental backend - MDB
- server: dynamic configuration for passwd, perl, shell, sock,
and sql backends
- server: support passwords in APR1
- library: support for Wahl (draft)
- a lot of bugfixes
- remove patches which were merged upstream
2011-11-30 16:51:05 +01:00
0fcc2f2eb2
release bump (2.4.26-6)
2011-11-01 15:25:46 +01:00
356af46ea6
CVE-2011-4079 one-byte buffer overflow in slapd
...
Resolves : #749324
2011-11-01 15:25:46 +01:00
25e27999de
servers: add libdb-utils to Requires
2011-11-01 13:34:30 +01:00
a0c545d1a7
patch slapd to skip empty arguments
...
This is required by systemd, as variable expansion works there different
than in shell. Empty SLAPD_OPTIONS in environment file would not work.
(The patch is Fedora specific.)
2011-11-01 13:34:30 +01:00
33514c3f00
scriptlet: convert sysconfig/ldap to sysconfig/slapd
2011-11-01 13:34:17 +01:00
62f9c65cff
rpmlint warnings: doc in non utf-8 encoding
2011-11-01 13:34:17 +01:00
8f315f552e
rpmlint warnings: macro in comment/changelog
2011-11-01 13:34:17 +01:00
b6085c259f
specfile: clean %files, drop defattr macros
...
- %defattr is not needed since Fedora 14
- permissions are taken from installed files
(removed chmod and added install where possible)
- %attr was left only on places, where non-root owner is needed
- removed slashes between: %{buildroot}%{_somedir}
- files reordered by type
- merged "%dir dir" and "dir/files*"
2011-11-01 13:34:17 +01:00
05cb2507b0
specfile: handle upgrades with new maintainance scripts
2011-11-01 13:34:08 +01:00
2d2d8a4c8a
specfile: migrate initscript to systemd service
2011-10-27 17:27:43 +02:00
0a9b211e8c
specfile: reorder sources
2011-10-27 17:27:43 +02:00
1e5237aaab
provide new sysconfig file, rename ldap to slapd
...
On some places, 'ldap' was used in context with OpenLDAP server, mostly
from historical reasons. This was changed to 'slapd' where possible
without breaking configuration.
2011-10-27 17:27:43 +02:00
dc496ea425
remove initscript, provide systemd service file
2011-10-27 17:27:43 +02:00
a431c66519
new slapd maintainance scripts
2011-10-27 17:27:43 +02:00
10e4a847f6
remove old provides/obsoletes
2011-10-27 15:00:20 +02:00
9a8ced65aa
hardened build: remove LDFLAGS, enable macro
2011-10-27 14:45:10 +02:00
8d476e4dbd
rebuild: openldap does not work after libdb rebase
...
Resolves : #743824
2011-10-06 10:22:14 +02:00
b4a9bf4dad
regression fix: enable TCP wrappers
...
Resolves : #743213
2011-10-06 10:19:51 +02:00
81680b05fb
new feature update: honor priority/weight with ldap_domain2hostlist
...
There was a typo in the patch. "weight" of the SRV records was not
taken correctly.
Resolves : #733078
2011-09-21 11:05:39 +02:00
9c0ef47ce4
fix: allow unsetting of tls_* syncrepl options
...
Resolves : #734187
2011-09-12 18:42:53 +02:00
af7e905857
fix: SSL_ForceHandshake function is not thread safe
...
Resolves : #701678
2011-09-12 15:35:09 +02:00
9ee41aa9a4
manpage fix: wrong ldap_sync_destroy() prototype in ldap_sync(3) manpage
...
Resolves : #717722
2011-08-24 19:24:49 +02:00
a551ec94d3
new feature: honor priority/weight with ldap_domain2hostlist
...
Resolves : #733078
2011-08-24 19:17:27 +02:00
3e083e8b93
fix: matching wildcard hostnames in certificate Subject field does not work
...
Resolves : #733073
2011-08-24 19:12:30 +02:00
482a20080c
manpage fix: errors in manual page slapo-unique
...
Resolves : #733070
2011-08-24 19:05:49 +02:00
c6479d1199
fix: DDS overlay tolerance parametr doesn't function and breakes default TTL
...
Resolves : #733069
2011-08-24 19:01:05 +02:00
a35a381613
fix: conversion of constraint overlay settings to cn=config is incorrect
...
Resolves : #733067
2011-08-24 18:58:45 +02:00
8ac21093cd
fix: memleak - free the return of tlsm_find_and_verify_cert_key
...
Resolves : #725818
2011-08-24 18:48:35 +02:00
49f6078a21
incorrect behavior of allow/try options of VerifyCert and TLS_REQCERT
...
Resolves : #725819
2011-08-24 18:40:37 +02:00
67c9630d50
fix: NSS_Init* functions are not thread safe
...
Resolves : #731112
2011-08-24 18:18:33 +02:00
924b91284d
add partial RELRO support
...
Resolves : #733071
2011-08-24 18:12:01 +02:00
a27bcf4338
Rebuilt for rpm ( #728707 )
2011-08-14 14:09:44 -05:00
c90fe38088
fix: memleak in tlsm_auth_cert_handler
...
Resolves : #717730
2011-07-20 16:44:40 +02:00
583cde50ed
rebase to 2.4.26
...
- remove upstream included patches
2011-07-20 16:44:30 +02:00
b35dfa8417
fix typo in patch name
2011-06-28 11:26:47 +02:00
fd3f90103e
allow build against DB 5.2
...
Resolves : #715827
2011-06-27 18:53:29 +02:00
2aeb38e146
fix: segfault when LDIF input is not terminated by newline
...
Resolves : #716858
2011-06-27 18:53:29 +02:00
4098fcd663
fix: segfault when input line in LDIF file is indented incorrectly
...
Resolves : #716855
2011-06-27 18:53:29 +02:00
9925959a7d
fix: segmentation fault caused by double-free in ldapexop
...
Resolves : #699683
2011-06-27 18:53:29 +02:00
865ea62898
fix: connection failure if TLS_CACERTDIR doesn't exist but TLS_REQCERT is set to 'never'
...
Resolves : #716854
2011-06-27 18:53:28 +02:00
cea83df834
openldap-servers scriptlets require initscripts package
...
Resolves : #716857
2011-06-27 18:53:28 +02:00
2ce75ca315
root user management ACLs on cn=config
...
Resolves : #712495
2011-06-27 18:53:28 +02:00
Jan Vcelak
Dennis Gilmore
Rex Dieter